Qualys VM vs SecurityScorecard comparison

Cancel
You must select at least 2 products to compare!
Wiz Logo
Read 1 Wiz review
7,061 views|5,622 comparisons
Qualys Logo
14,943 views|11,915 comparisons
SecurityScorecard Logo
3,223 views|2,451 comparisons
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Qualys VM and SecurityScorecard based on real PeerSpot user reviews.

Find out what your peers are saying about Tenable Network Security, Qualys, Morphisec and others in Vulnerability Management.
To learn more, read our detailed Vulnerability Management Report (Updated: November 2022).
656,474 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Out of all the features, the one item that has been most valuable is the fact that Wiz puts into context all the pieces that create an issue, and applies a particular risk evaluation that helps us prioritize when we need to address a misconfiguration, vulnerability, or any issue that would put our environment into risk."

More Wiz Pros →

"The most recent is VMDR, which provides a comprehensive overview of how to detect, patch, and remediate specific vulnerabilities.""Qualys has a continuous endpoint monitoring feature for agent-based scanning. Once you deploy the solution, it monitors everything that is happening every 30 minutes. Then, if there are any vulnerabilities, they are reported.""The most valuable feature is the connection of threat intelligence information with identified vulnerabilities, which means you can prioritize vulnerabilities according to actual attacks.""There are many features. Its reliability, ease of installation, ease of use, and the richness of the information provided are the most valuable features.""Provides great functionality.""It's stable and quite reliable.""It's really beneficial for scanning and interacting with the agent.""I like Qualys because it is a very complete product, more so than Tenable."

More Qualys VM Pros →

"With its automated approach, nothing is missed on the IPs your organization is related to."

More SecurityScorecard Pros →

Cons
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."

More Wiz Cons →

"Certain integration factors between different options could be improved.""There needs to be better documentation.""Qualys does have an on-prem solution, but it is very expensive.""The reporting and the GUI need improvements.""The disadvantage of working with Qualys is that the graphical interface is quite outdated.""The price could be better. Asset view is still a legacy feature. I'm not able to extract the information about the asset with complete details. It would be better if they fixed that in the next release. I know Qualys is already working on it, so I'm hopeful it will be available in the next five or six months. That would be something that's changed where I seek improvement.""Qualys VM's scanner doesn't pick up every vulnerability, so we have to use multiple scanners to cover that gap.""Sometimes the scanning can get overwhelmed and start to drag when a lot of users are trying to scan at once."

More Qualys VM Cons →

"There could be more information in regards to solving problems like hints on what specifically to look for."

More SecurityScorecard Cons →

Pricing and Cost Advice
  • "The pricing seems pretty simple. We don't have to do a lot of calculations to figure out what the components are. They do it by enabling specific features, either basics or advanced, which makes it easy to select."
  • More Wiz Pricing and Cost Advice →

  • "It is different for every company, but for us, it's every three years."
  • "Qualys is cheaper and more affordable than other solutions."
  • "The pricing and licensing for Qualys could be improved."
  • "We do see over $100,000 in terms of price, for mid-size programs. You likely will pay more than $100,000 without any discount. It is a bit pricey."
  • "I used to work there, so I never paid for the product. As an employee, we get a lifetime license for personal use, and that's what I'm using. It is a comprehensive platform, so there is a lot more to it. There could be other solutions that are probably a little bit cheaper, but it depends on what people need. Different people have different needs. It offers many things on the same platform. If you add all the things up, it should be cheaper, but I have not done any analysis specifically."
  • "There is a license for the use of this solution. We pay annually instead of monthly to receive a better discount on the price."
  • "Qualys VM is better suited for medium to large companies because the price can be too much for smaller customers."
  • "There are no additional fees in addition to the standard licensing fees."
  • More Qualys VM Pricing and Cost Advice →

    Information Not Available
    report
    Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
    656,474 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:Wiz and Lacework sucks... Buy Orca. 
    Top Answer:We use this solution to scan the servers on the network. It is used predominantly by our information security team.
    Top Answer:The thing I like most about Tenable Nessus is its ease of use. I also like that it has highly customizable scans… more »
    Top Answer:Hi Yao, The two products are totally different solutions. Pentera is an Automated Penetration Testing platform… more »
    Top Answer:With its automated approach, nothing is missed on the IPs your organization is related to.
    Top Answer:They already have set up for most organizations with their security footprint gathered from whois, DNS, and other… more »
    Top Answer:There could be more information in regards to solving problems like hints on what specifically to look for. There should… more »
    Comparisons
    Also Known As
    QualysGuard VM
    Learn More
    Overview

    Wiz is reinventing cloud security from the inside out.

    We’re on a mission to help organizations effectively reduce risks in their Cloud and Kubernetes environments. Purpose-built for the unique complexities of multi-environment, multi-workload, and multi-project cloud estates, Wiz automatically correlates the critical risk factors to deliver actionable insights that don't waste time.

    Wiz connects in minutes using a 100% API-based approach that scans both platform configurations and inside every workload. Our full security stack context surfaces the toxic combinations that show the attackers’ view to a breach. Security and development teams use Wiz workflows to proactively remove risks and prevent them from becoming breaches.

    Get a demo | Wiz

    Qualys VM is a vulnerability management tool that is cloud-based and gives you immediate, global visibility into where your IT systems might be vulnerable to the latest internet threats and how to protect them. The solution uses real-time threat intelligence, advanced correlation, and powerful machine learning models to automatically prioritize the riskiest vulnerabilities on your most critical assets – reducing potentially thousands of discovered vulnerabilities. Qualys VM frees you from the substantial cost, resource, and deployment issues associated with traditional software products.

    Qualys VM Features

    Qualys VM has many valuable key features. Some of the most useful ones include:

    • Agent-based detection: Qualys VM works with Qualys Cloud Agents, extending its network coverage to assets that can’t be scanned. With this feature, vulnerabilities are found faster and network impact is minimal.
    • Constant monitoring and alerts: Teams are proactively alerted about potential threats so problems can be tackled before turning into breaches. You can tailor alerts and be notified about general changes or specific circumstances.
    • Comprehensive coverage and visibility: Qualys VM scans and identifies vulnerabilities continuously in order to protect your IT assets on premises, in the cloud, and mobile endpoints. In addition, its executive dashboard displays an overview of your security posture and access to remediation details. The solution also generates custom role-based reports for multiple stakeholders, including automatic security documentation for compliance auditors.

    Qualys VM Benefits

    There are many benefits to implementing Qualys VM. Some of the biggest advantages the solution offers include:

    • Lower and more predictable TCO: The solution doesn’t require any capital expenditures, extra human resources, or infrastructure or software to deploy and manage.
    • Full clarity: Qualys VM gives you full clarity into your data center assets, identifies their vulnerabilities, prioritizes remediation, and assesses IT compliance.
    • Accurate, prioritized results: The solution features a powerful data analysis, correlation, and reporting engine.
    • Advanced protection: Because Qualys VM constantly monitors your environment, it can flag traffic anomalies and alert you of any compromising indicators.
    • Scan for vulnerabilities everywhere: You can scan systems anywhere from the same console, including your perimeter, your internal network, and cloud environments. Since Qualys separates scanning from reporting, you can create custom reports showing each audience just the level of detail it needs to see.

    Reviews from Real Users

    Qualys VM is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it offers good continuous monitoring, reporting functionality, and other valuable features like a priority mechanism.

    A Senior Security Consultant at a tech services company says, “Continuous Monitoring is excellent because it is entirely dependent on the agent, and the Agent Scan, is also quite good. I also like the asset tagging, asset grouping features, and the dashboard, because we can customize and create our own dashboard.”

    Another reviewer, an Information Security Manager at an outsourcing company comments, “The reporting functionality is great. It's more accurate and effective to get a picture of what the vulnerabilities are in a more distributed workforce.”

    Additionally, a Cyber Security Director at a manufacturing company mentions, “The prioritization mechanism is the most valuable aspect of the solution.” And also adds, “The initial setup is straightforward and technical support is great.”

    Funded by world-class investors including Evolution Equity Partners, Silver Lake Partners, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings with more than 12 million companies continuously rated. Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard’s patented rating technology is used by over 25,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight. SecurityScorecard continues to make the world a safer place by transforming the way companies understand, improve and communicate cybersecurity risk to their boards, employees and vendors. Every organization has the universal right to their trusted and transparent Instant SecurityScorecard rating. For more information, visit securityscorecard.com or connect with us on LinkedIn.

    Offer
    Learn more about Wiz
    Learn more about Qualys VM
    Learn more about SecurityScorecard
    Sample Customers
    Wiz is the fastest growing software company ever - $100M ARR in 18 months: Wiz becomes the fastest-growing software company ever | Wiz Blog  Discover why companies, including Salesforce, Morgan Stanley, Fox, and Bridgewater choose Wiz as their cloud security partner. Read their success stories here: Customers | Wiz
    Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx
    TriNet, USAA, Zurich, Gilt Groupe, McGraw Hill Financial
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm15%
    Manufacturing Company6%
    Healthcare Company5%
    REVIEWERS
    Financial Services Firm22%
    Comms Service Provider16%
    Healthcare Company9%
    Manufacturing Company9%
    VISITORS READING REVIEWS
    Computer Software Company20%
    Financial Services Firm11%
    Comms Service Provider8%
    Government7%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm11%
    Comms Service Provider7%
    Insurance Company6%
    Company Size
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise17%
    Large Enterprise63%
    REVIEWERS
    Small Business23%
    Midsize Enterprise14%
    Large Enterprise63%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise17%
    Large Enterprise62%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise15%
    Large Enterprise65%
    Buyer's Guide
    Vulnerability Management
    November 2022
    Find out what your peers are saying about Tenable Network Security, Qualys, Morphisec and others in Vulnerability Management. Updated: November 2022.
    656,474 professionals have used our research since 2012.

    Qualys VM is ranked 3rd in Vulnerability Management with 29 reviews while SecurityScorecard is ranked 3rd in IT Vendor Risk Management with 1 review. Qualys VM is rated 8.2, while SecurityScorecard is rated 6.0. The top reviewer of Qualys VM writes "Excellent continuous monitoring, helpful technical support, easy to scale, and simple to install". On the other hand, the top reviewer of SecurityScorecard writes "Provides security footprint insights and is free, but not enough features are included in the free tier". Qualys VM is most compared with Tenable Nessus, Tenable.sc, Microsoft Defender for Cloud Apps, Rapid7 InsightVM and Tenable.io Vulnerability Management, whereas SecurityScorecard is most compared with BitSight, Recorded Future, RiskRecon, Tenable Nessus and UpGuard.

    We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.